CVE-2021-40165

Summary: CVE-2021-40165 affects Autodesk Image Processing components. A crafted TIFF/PICT/TGA/RLC file can cause a write past the allocated buffer during parsing, potentially allowing arbitrary code execution. The CVSSv3.1 base score is 7.8 (HIGH) with LOCAL attack vector, low attack complexity, ...

Autodesk Image Processing 缓冲区错误漏洞

Autodesk Image Processing is an image processing software from the US company Autodesk. A security vulnerability exists in Autodesk Image Processing, which can be exploited by an attacker to execute arbitrary code when the Autodesk Image Processing component writes out of an allocated buffer when...

CVE-2021-40166

A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code...

CVE-2021-40166

CVE-2021-40166 affects Autodesk Image Processing: parsing of a malicious PNG can trigger a use-after-free by freeing an object that has already been freed, potentially allowing arbitrary code execution. Documented impact is arbitrary code execution; no specific remediation/version fixes are state...

The vulnerability of the `cv::PxMDecoder::readData` function in the `grfmt_pxm.cpp` component of the OpenCV library, which is used for computer vision, image processing, and numerical algorithms of general purpose, open-source computer vision. This vulnerability allows a attacker to cause a service denial.

The vulnerability of the cv::PxMDecoder::readData function in the grfmtpxm.cpp component of the Computer Vision, Image Processing, and Numerical Algorithms General Purpose Library OpenSource Computer Vision Library – OpenCV is related to the execution of operations outside of the buffer in memory...

CVE-2022-32841

The issue was addressed with improved memory handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Processing a maliciously crafted image may result in disclosure of process memory...

CVE-2022-32785

A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service...

CVE-2022-32785

A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service...

Null pointer dereference

A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service...

CVE-2022-32841

The issue was addressed with improved memory handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Processing a maliciously crafted image may result in disclosure of process memory...

The vulnerability of the Libjpeg-turbo image processing library, related to writing beyond the buffer boundaries, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Libjpeg-turbo library for image processing is related to improper compression/decompression of gigapixel images. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service interruptions...

Adobe Photoshop Buffer Overflow Vulnerability (CNVD-2022-66022)

Adobe Photoshop is an application developed and distributed by Adobe for image processing. A buffer overflow vulnerability exists in Adobe Photoshop, which could lead to the execution of arbitrary code in the context of the current user. An attacker could exploit this vulnerability to cause a...

Adobe Photoshop Buffer Overflow Vulnerability (CNVD-2022-66018)

Adobe Photoshop is an application developed and distributed by Adobe for image processing. Adobe Photoshop is vulnerable to a buffer overflow vulnerability that could lead to the execution of arbitrary code in the context of the current user. An attacker could exploit the vulnerability to read...

Adobe Photoshop Information Disclosure Vulnerability

Adobe Photoshop is an application developed and distributed by Adobe for image processing. Adobe Photoshop suffers from an information leakage vulnerability, which acquires sensitive information that can be further read out of bounds. An attacker can exploit this vulnerability to obtain sensitive...

JasPer 安全漏洞

JasPer is a C-based tool for image processing from the individual developer Michael Adams. The software supports the JPEG-2000 format as defined in ISO/IEC 15444-1 and is primarily used for image encoding and processing. A security vulnerability exists in JasPer version 3.0.6, which originates fr...

USN-5607-1 gdk-pixbuf vulnerability

It was discovered that GDK-PixBuf incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

About the security content of watchOS 9

About the security content of watchOS 9 This document describes the security content of watchOS 9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of tvOS 16

About the security content of tvOS 16 This document describes the security content of tvOS 16. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

About the security content of macOS Big Sur 11.7

About the security content of macOS Big Sur 11.7 This document describes the security content of macOS Big Sur 11.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools due to a heap buffer overflow in swfDefineLosslessBitsTagToImage in the /modules/swfbits.c file...